最游记 明文call内部原型
0097F040/.55 PUSH EBP0097F041|.8BEC MOV EBP,ESP
0097F043|.83E4 F8 AND ESP,FFFFFFF8
0097F046|.6A FF PUSH -1
0097F048|.68 2802AC00 PUSH Client.00AC0228
0097F04D|.64:A1 0000000>MOV EAX,DWORD PTR FS:
0097F053|.50 PUSH EAX
0097F054|.83EC 20 SUB ESP,20
0097F057|.53 PUSH EBX
0097F058|.56 PUSH ESI
0097F059|.57 PUSH EDI
0097F05A|.A1 887ABF00 MOV EAX,DWORD PTR DS:
0097F05F|.33C4 XOR EAX,ESP
0097F061|.50 PUSH EAX
0097F062|.8D4424 30 LEA EAX,DWORD PTR SS:
0097F066|.64:A3 0000000>MOV DWORD PTR FS:,EAX
0097F06C|.8BF9 MOV EDI,ECX
0097F06E|.8B75 08 MOV ESI,DWORD PTR SS:
0097F071|.85F6 TEST ESI,ESI
0097F073|.0F84 61040000 JE Client.0097F4DA
0097F079|.8B06 MOV EAX,DWORD PTR DS:
0097F07B|.3D 00001000 CMP EAX,100000
0097F080|.0FB74E 04 MOVZX ECX,WORD PTR DS:
0097F084|.894424 10 MOV DWORD PTR SS:,EAX
0097F088|.894C24 18 MOV DWORD PTR SS:,ECX
0097F08C|.66:898F B6860>MOV WORD PTR DS:,CX
0097F093|.8987 B8860000 MOV DWORD PTR DS:,EAX
0097F099|.0F87 31040000 JA Client.0097F4D0
0097F09F|.85C0 TEST EAX,EAX
0097F0A1|.0F84 29040000 JE Client.0097F4D0
0097F0A7|.8A46 07 MOV AL,BYTE PTR DS:
0097F0AA|.3C 04 CMP AL,4
0097F0AC|.C64424 14 00MOV BYTE PTR SS:,0
0097F0B1|.B3 01 MOV BL,1
0097F0B3|.74 6D JE SHORT Client.0097F122
0097F0B5|.83BF 04440000>CMP DWORD PTR DS:,-1
0097F0BC|.74 20 JE SHORT Client.0097F0DE
0097F0BE|.8B07 MOV EAX,DWORD PTR DS:
0097F0C0|.8B90 B4000000 MOV EDX,DWORD PTR DS:
0097F0C6|.8BCF MOV ECX,EDI
0097F0C8|.FFD2 CALL EDX
0097F0CA|.3B87 04440000 CMP EAX,DWORD PTR DS:
0097F0D0|.7E 0C JLE SHORT Client.0097F0DE
0097F0D2|.807E 07 03 CMP BYTE PTR DS:,3
0097F0D6|.74 4A JE SHORT Client.0097F122
0097F0D8|.885C24 14 MOV BYTE PTR SS:,BL
0097F0DC|.EB 42 JMP SHORT Client.0097F120
0097F0DE|>0FB646 07 MOVZX EAX,BYTE PTR DS:
0097F0E2|.83E8 01 SUB EAX,1 ;Switch (cases 1..2)
0097F0E5|.74 20 JE SHORT Client.0097F107
0097F0E7|.83E8 01 SUB EAX,1
0097F0EA|.75 36 JNZ SHORT Client.0097F122
0097F0EC|.8B07 MOV EAX,DWORD PTR DS: ;Case 2 of switch 0097F0E2
0097F0EE|.8B90 B4000000 MOV EDX,DWORD PTR DS:
0097F0F4|.8BCF MOV ECX,EDI
0097F0F6|.FFD2 CALL EDX
0097F0F8|.3B87 98000000 CMP EAX,DWORD PTR DS:
0097F0FE|.76 22 JBE SHORT Client.0097F122
0097F100|.C64424 14 02MOV BYTE PTR SS:,2
0097F105|.EB 19 JMP SHORT Client.0097F120
0097F107|>8B07 MOV EAX,DWORD PTR DS: ;Case 1 of switch 0097F0E2
0097F109|.8B90 B4000000 MOV EDX,DWORD PTR DS:
0097F10F|.8BCF MOV ECX,EDI
0097F111|.FFD2 CALL EDX
0097F113|.3B87 94000000 CMP EAX,DWORD PTR DS:
0097F119|.76 07 JBE SHORT Client.0097F122
0097F11B|.C64424 14 03MOV BYTE PTR SS:,3
0097F120|>32DB XOR BL,BL
0097F122|>8B4C24 18 MOV ECX,DWORD PTR SS: ;Default case of switch 0097F0E2
0097F126|.66:81F9 FDFFCMP CX,0FFFD
0097F12B|.73 4D JNB SHORT Client.0097F17A
0097F12D|.8B5424 10 MOV EDX,DWORD PTR SS:
0097F131|.DB4424 10 FILD DWORD PTR SS:
0097F135|.0FB7C1 MOVZX EAX,CX
0097F138|.8D0440 LEA EAX,DWORD PTR DS:
0097F13B|.03C0 ADD EAX,EAX
0097F13D|.03C0 ADD EAX,EAX
0097F13F|.838400 F0EFE0>ADD DWORD PTR DS:,1
0097F147|.03C0 ADD EAX,EAX
0097F149|.85D2 TEST EDX,EDX
0097F14B|.7D 06 JGE SHORT Client.0097F153
0097F14D|.DC05 A014B700 FADD QWORD PTR DS:
0097F153|>84DB TEST BL,BL
0097F155|.DD80 F8EFE000 FLD QWORD PTR DS:
0097F15B|.D8C1 FADD ST(0),ST(1)
0097F15D|.DD98 F8EFE000 FSTP QWORD PTR DS:
0097F163|.75 54 JNZ SHORT Client.0097F1B9
0097F165|.DC80 00F0E000 FADD QWORD PTR DS:
0097F16B|.8380 F4EFE000>ADD DWORD PTR DS:,1
0097F172|.DD98 00F0E000 FSTP QWORD PTR DS:
0097F178|.EB 04 JMP SHORT Client.0097F17E
0097F17A|>84DB TEST BL,BL
0097F17C|.75 3D JNZ SHORT Client.0097F1BB
0097F17E|>8B87 88000000 MOV EAX,DWORD PTR DS:
0097F184|.85C0 TEST EAX,EAX
0097F186|.74 21 JE SHORT Client.0097F1A9
0097F188|.0FB697 A48600>MOVZX EDX,BYTE PTR DS:
0097F18F|.52 PUSH EDX
0097F190|.8B97 A8860000 MOV EDX,DWORD PTR DS:
0097F196|.52 PUSH EDX
0097F197|.8B5424 1C MOV EDX,DWORD PTR SS:
0097F19B|.52 PUSH EDX
0097F19C|.8B5424 1C MOV EDX,DWORD PTR SS:
0097F1A0|.52 PUSH EDX
0097F1A1|.51 PUSH ECX
0097F1A2|.6A 01 PUSH 1
0097F1A4|.FFD0 CALL EAX
0097F1A6|.83C4 18 ADD ESP,18
0097F1A9|>0FB64424 14 MOVZX EAX,BYTE PTR SS:
0097F1AE|.8987 B2860000 MOV DWORD PTR DS:,EAX
0097F1B4|.E9 21030000 JMP Client.0097F4DA
0097F1B9|>DDD8 FSTP ST(0)
0097F1BB|>837D 14 00 CMP DWORD PTR SS:,0
0097F1BF|.0F84 99000000 JE Client.0097F25E
0097F1C5|.837D 18 00 CMP DWORD PTR SS:,0
0097F1C9|.0F8E 8F000000 JLE Client.0097F25E
0097F1CF|.FF15 E0B1AF00 CALL DWORD PTR DS: ; [GetCurrentThreadId
0097F1D5|.50 PUSH EAX
0097F1D6|.B9 18093501 MOV ECX,Client.01350918
0097F1DB|.E8 40360000 CALL Client.00982820
0097F1E0|.8BD8 MOV EBX,EAX
0097F1E2|.85DB TEST EBX,EBX
0097F1E4|.75 3B JNZ SHORT Client.0097F221
0097F1E6|>8B87 88000000 MOV EAX,DWORD PTR DS:
0097F1EC|.85C0 TEST EAX,EAX
0097F1EE|.74 22 JE SHORT Client.0097F212
0097F1F0|.0FB68F A48600>MOVZX ECX,BYTE PTR DS:
0097F1F7|.8B97 A8860000 MOV EDX,DWORD PTR DS:
0097F1FD|.51 PUSH ECX
0097F1FE|.8B4C24 14 MOV ECX,DWORD PTR SS:
0097F202|.52 PUSH EDX
0097F203|.8B5424 20 MOV EDX,DWORD PTR SS:
0097F207|.6A 04 PUSH 4
0097F209|.51 PUSH ECX
0097F20A|.52 PUSH EDX
0097F20B|.6A 01 PUSH 1
0097F20D|.FFD0 CALL EAX
0097F20F|.83C4 18 ADD ESP,18
0097F212|>C787 B2860000>MOV DWORD PTR DS:,4
0097F21C|.E9 B9020000 JMP Client.0097F4DA
0097F221|>8B4424 10 MOV EAX,DWORD PTR SS:
0097F225|.8B0D 14D53501 MOV ECX,DWORD PTR DS:
0097F22B|.50 PUSH EAX
0097F22C|.56 PUSH ESI
0097F22D|.8B35 50B5AF00 MOV ESI,DWORD PTR DS: ;msvcr80.memcpy_s
0097F233|.51 PUSH ECX
0097F234|.53 PUSH EBX
0097F235|.FFD6 CALL ESI
0097F237|.8B55 18 MOV EDX,DWORD PTR SS:
0097F23A|.8B45 14 MOV EAX,DWORD PTR SS:
0097F23D|.8B0D 14D53501 MOV ECX,DWORD PTR DS:
0097F243|.52 PUSH EDX
0097F244|.8B5424 24 MOV EDX,DWORD PTR SS:
0097F248|.50 PUSH EAX
0097F249|.51 PUSH ECX
0097F24A|.8D0413 LEA EAX,DWORD PTR DS:
0097F24D|.50 PUSH EAX
0097F24E|.FFD6 CALL ESI
0097F250|.8B45 18 MOV EAX,DWORD PTR SS:
0097F253|.0103 ADD DWORD PTR DS:,EAX
0097F255|.83C4 20 ADD ESP,20
0097F258|.014424 10 ADD DWORD PTR SS:,EAX
0097F25C|.8BF3 MOV ESI,EBX
0097F25E|>8B17 MOV EDX,DWORD PTR DS:
0097F260|.8B42 48 MOV EAX,DWORD PTR DS:
0097F263|.8BCF MOV ECX,EDI
0097F265|.FFD0 CALL EAX
0097F267|.84C0 TEST AL,AL
0097F269|.0F85 6B020000 JNZ Client.0097F4DA
0097F26F|.F646 06 01 TEST BYTE PTR DS:,1
0097F273|.0F84 EC000000 JE Client.0097F365
0097F279|.FF15 E0B1AF00 CALL DWORD PTR DS: ; [GetCurrentThreadId
0097F27F|.50 PUSH EAX
0097F280|.B9 20D53501 MOV ECX,Client.0135D520
0097F285|.E8 96350000 CALL Client.00982820
0097F28A|.8BD8 MOV EBX,EAX
0097F28C|.85DB TEST EBX,EBX
0097F28E|.^ 0F84 52FFFFFF JE Client.0097F1E6
0097F294|.8B06 MOV EAX,DWORD PTR DS:
0097F296|.8D5424 1C LEA EDX,DWORD PTR SS:
0097F29A|.52 PUSH EDX
0097F29B|.8D53 10 LEA EDX,DWORD PTR DS:
0097F29E|.8D48 F0 LEA ECX,DWORD PTR DS:
0097F2A1|.8D46 10 LEA EAX,DWORD PTR DS:
0097F2A4|.52 PUSH EDX
0097F2A5|.C74424 24 F0F>MOV DWORD PTR SS:,1FFFF0
0097F2AD|.E8 EE8FF5FF CALL Client.008D82A0
0097F2B2|.83C4 08 ADD ESP,8
0097F2B5|.85C0 TEST EAX,EAX
0097F2B7|.74 3B JE SHORT Client.0097F2F4
0097F2B9|.8B87 88000000 MOV EAX,DWORD PTR DS:
0097F2BF|.85C0 TEST EAX,EAX
0097F2C1|.74 22 JE SHORT Client.0097F2E5
0097F2C3|.0FB68F A48600>MOVZX ECX,BYTE PTR DS:
0097F2CA|.8B97 A8860000 MOV EDX,DWORD PTR DS:
0097F2D0|.51 PUSH ECX
0097F2D1|.8B4C24 14 MOV ECX,DWORD PTR SS:
0097F2D5|.52 PUSH EDX
0097F2D6|.8B5424 20 MOV EDX,DWORD PTR SS:
0097F2DA|.6A 0A PUSH 0A
0097F2DC|.51 PUSH ECX
0097F2DD|.52 PUSH EDX
0097F2DE|.6A 01 PUSH 1
0097F2E0|.FFD0 CALL EAX
0097F2E2|.83C4 18 ADD ESP,18
0097F2E5|>C787 B2860000>MOV DWORD PTR DS:,0A
0097F2EF|.E9 E6010000 JMP Client.0097F4DA
0097F2F4|>6A 10 PUSH 10
0097F2F6|.56 PUSH ESI
0097F2F7|.6A 10 PUSH 10
0097F2F9|.53 PUSH EBX
0097F2FA|.FF15 50B5AF00 CALL DWORD PTR DS: ;msvcr80.memcpy_s
0097F300|.8B4424 2C MOV EAX,DWORD PTR SS:
0097F304|.83C0 10 ADD EAX,10
0097F307|.8903 MOV DWORD PTR DS:,EAX
0097F309|.0FB746 04 MOVZX EAX,WORD PTR DS:
0097F30D|.83C4 10 ADD ESP,10
0097F310|.66:3D FDFF CMP AX,0FFFD
0097F314|.73 41 JNB SHORT Client.0097F357
0097F316|.8B36 MOV ESI,DWORD PTR DS:
0097F318|.85F6 TEST ESI,ESI
0097F31A|.0FB74424 18 MOVZX EAX,WORD PTR SS:
0097F31F|.897424 20 MOV DWORD PTR SS:,ESI
0097F323|.8D0440 LEA EAX,DWORD PTR DS:
0097F326|.DB4424 20 FILD DWORD PTR SS:
0097F32A|.7D 06 JGE SHORT Client.0097F332
0097F32C|.DC05 A014B700 FADD QWORD PTR DS:
0097F332|>DC2CC5 F8EFE0>FSUBR QWORD PTR DS:
0097F339|.DD14C5 F8EFE0>FST QWORD PTR DS:
0097F340|.8B0B MOV ECX,DWORD PTR DS:
0097F342|.85C9 TEST ECX,ECX
0097F344|.DB03 FILD DWORD PTR DS:
0097F346|.7D 06 JGE SHORT Client.0097F34E
0097F348|.DC05 A014B700 FADD QWORD PTR DS:
0097F34E|>DEC1 FADDP ST(1),ST(0)
0097F350|.DD1CC5 F8EFE0>FSTP QWORD PTR DS:
0097F357|>8BF3 MOV ESI,EBX
0097F359|.8B1B MOV EBX,DWORD PTR DS:
0097F35B|.895C24 10 MOV DWORD PTR SS:,EBX
0097F35F|.899F B8860000 MOV DWORD PTR DS:,EBX
0097F365|>8B45 10 MOV EAX,DWORD PTR SS:
0097F368|.33C9 XOR ECX,ECX
0097F36A|.3BC1 CMP EAX,ECX
0097F36C|.75 0D JNZ SHORT Client.0097F37B
0097F36E|.0FB687 888400>MOVZX EAX,BYTE PTR DS:
0097F375|.894424 1C MOV DWORD PTR SS:,EAX
0097F379|.EB 04 JMP SHORT Client.0097F37F
0097F37B|>894424 1C MOV DWORD PTR SS:,EAX
0097F37F|>817C24 10 000>CMP DWORD PTR SS:,200
0097F387|.894C24 20 MOV DWORD PTR SS:,ECX
0097F38B|.0F83 9E000000 JNB Client.0097F42F
0097F391|.807E 07 04 CMP BYTE PTR DS:,4
0097F395|.50 PUSH EAX
0097F396|.56 PUSH ESI
0097F397|.8DB7 20010000 LEA ESI,DWORD PTR DS:
0097F39D|.74 06 JE SHORT Client.0097F3A5
0097F39F|.8DB7 F4000000 LEA ESI,DWORD PTR DS:
0097F3A5|>E8 F6370000 CALL Client.00982BA0
0097F3AA|.8AD8 MOV BL,AL
0097F3AC|.84DB TEST BL,BL
0097F3AE|.75 07 JNZ SHORT Client.0097F3B7
0097F3B0|.C64424 14 05MOV BYTE PTR SS:,5
0097F3B5|.EB 1A JMP SHORT Client.0097F3D1
0097F3B7|>0FB75424 18 MOVZX EDX,WORD PTR SS:
0097F3BC|.3997 EC410000 CMP DWORD PTR DS:,EDX
0097F3C2|.75 0D JNZ SHORT Client.0097F3D1
0097F3C4|.8D87 F4410000 LEA EAX,DWORD PTR DS:
0097F3CA|.50 PUSH EAX ; /pVar
0097F3CB|.FF15 F0B1AF00 CALL DWORD PTR DS: ; \InterlockedIncrement
0097F3D1|>84DB TEST BL,BL
0097F3D3|.8B4424 10 MOV EAX,DWORD PTR SS:
0097F3D7|.0F85 FF000000 JNZ Client.0097F4DC
0097F3DD|>8B87 88000000 MOV EAX,DWORD PTR DS:
0097F3E3|.85C0 TEST EAX,EAX
0097F3E5|.74 25 JE SHORT Client.0097F40C
0097F3E7|.0FB697 A48600>MOVZX EDX,BYTE PTR DS:
0097F3EE|.8B8F A8860000 MOV ECX,DWORD PTR DS:
0097F3F4|.52 PUSH EDX
0097F3F5|.8B5424 18 MOV EDX,DWORD PTR SS:
0097F3F9|.51 PUSH ECX
0097F3FA|.8B4C24 18 MOV ECX,DWORD PTR SS:
0097F3FE|.52 PUSH EDX
0097F3FF|.8B5424 24 MOV EDX,DWORD PTR SS:
0097F403|.51 PUSH ECX
0097F404|.52 PUSH EDX
0097F405|.6A 01 PUSH 1
0097F407|.FFD0 CALL EAX
0097F409|.83C4 18 ADD ESP,18
0097F40C|>0FB64424 14 MOVZX EAX,BYTE PTR SS:
0097F411|.8987 B2860000 MOV DWORD PTR DS:,EAX
0097F417|.83C8 FF OR EAX,FFFFFFFF
0097F41A|.8B4C24 30 MOV ECX,DWORD PTR SS:
0097F41E|.64:890D 00000>MOV DWORD PTR FS:,ECX
0097F425|.59 POP ECX
0097F426|.5F POP EDI
0097F427|.5E POP ESI
0097F428|.5B POP EBX
0097F429|.8BE5 MOV ESP,EBP
0097F42B|.5D POP EBP
0097F42C|.C2 1400 RETN 14
0097F42F|>8B1D DCB9AF00 MOV EBX,DWORD PTR DS: ;winmm.timeGetTime
0097F435|.C74424 24 041>MOV DWORD PTR SS:,Client.00B2150>
0097F43D|.894C24 28 MOV DWORD PTR SS:,ECX
0097F441|.FFD3 CALL EBX
0097F443|.8D87 8C010000 LEA EAX,DWORD PTR DS:
0097F449|.50 PUSH EAX
0097F44A|.894424 2C MOV DWORD PTR SS:,EAX
0097F44E|.FF15 D0B1AF00 CALL DWORD PTR DS: ;ntdll_12.RtlEnterCriticalSection
0097F454|.FFD3 CALL EBX
0097F456|.33C9 XOR ECX,ECX
0097F458|.894C24 38 MOV DWORD PTR SS:,ECX
0097F45C|.807E 07 04 CMP BYTE PTR DS:,4
0097F460|.8D87 7C010000 LEA EAX,DWORD PTR DS:
0097F466|.8948 04 MOV DWORD PTR DS:,ECX
0097F469|.C740 08 00001>MOV DWORD PTR DS:,100000
0097F470|.8D97 20010000 LEA EDX,DWORD PTR DS:
0097F476|.74 06 JE SHORT Client.0097F47E
0097F478|.8D97 F4000000 LEA EDX,DWORD PTR DS:
0097F47E|>8B4C24 1C MOV ECX,DWORD PTR SS:
0097F482|.51 PUSH ECX
0097F483|.56 PUSH ESI
0097F484|.50 PUSH EAX
0097F485|.8D4C24 2C LEA ECX,DWORD PTR SS:
0097F489|.8910 MOV DWORD PTR DS:,EDX
0097F48B|.E8 601A0000 CALL Client.00980EF0
0097F490|.83C4 0C ADD ESP,0C
0097F493|.8BF0 MOV ESI,EAX
0097F495|.C74424 38 FFF>MOV DWORD PTR SS:,-1
0097F49D|.8D4C24 24 LEA ECX,DWORD PTR SS:
0097F4A1|.E8 7A37A8FF CALL Client.00402C20
0097F4A6|.8BC6 MOV EAX,ESI
0097F4A8|.83E8 01 SUB EAX,1
0097F4AB|.75 0A JNZ SHORT Client.0097F4B7
0097F4AD|.C64424 14 06MOV BYTE PTR SS:,6
0097F4B2|.^ E9 26FFFFFF JMP Client.0097F3DD
0097F4B7|>8B4424 20 MOV EAX,DWORD PTR SS:
0097F4BB|.8B4C24 30 MOV ECX,DWORD PTR SS:
0097F4BF|.64:890D 00000>MOV DWORD PTR FS:,ECX
0097F4C6|.59 POP ECX
0097F4C7|.5F POP EDI
0097F4C8|.5E POP ESI
0097F4C9|.5B POP EBX
0097F4CA|.8BE5 MOV ESP,EBP
0097F4CC|.5D POP EBP
0097F4CD|.C2 1400 RETN 14
0097F4D0|>C787 B2860000>MOV DWORD PTR DS:,0B
0097F4DA|>33C0 XOR EAX,EAX
0097F4DC|>8B4C24 30 MOV ECX,DWORD PTR SS:
0097F4E0|.64:890D 00000>MOV DWORD PTR FS:,ECX
0097F4E7|.59 POP ECX
0097F4E8|.5F POP EDI
0097F4E9|.5E POP ESI
0097F4EA|.5B POP EBX
0097F4EB|.8BE5 MOV ESP,EBP
0097F4ED|.5D POP EBP
0097F4EE\.C2 1400 RETN 14
0097F4F1 CC INT3
页:
[1]